If you run OpenX watch out for this - CRITICAL SECURITY - - GoFuckYourself.com

nikad · 09-18-2010, 06:56 AM

http://blog.sucuri.net/2010/09/openx...o-upgrade.html

http://blog.openx.org/09/security-up...8OpenX+Blog%29

Many sites are being reported as malicious by Google, causing traffic loss, etc. Hope you find this useful.

nik

Rick Diculous · 09-18-2010, 07:15 AM

Yeah, I got 5 of my sites blocked by google this week because I was using openx. they say I distributed badware though openx

Klen · 09-18-2010, 07:29 AM

This is why i use commercial scripts rather.

strobi · 09-18-2010, 07:43 AM

Holy shit! checking that out (upgrading)!

TheMaster · 09-18-2010, 08:02 AM

is this happening to sites running that particular update or for all older OpenX versions?

MaDalton · 09-18-2010, 08:04 AM

thanks for the info

DWB · 09-18-2010, 08:52 AM

Quote:

Originally Posted by KlenTelaris

This is why i use commercial scripts rather.

Such as?

Dating Port · 09-18-2010, 09:20 AM

I deleted my OpenX about a year ago.

Thanks for helping that guy out Nikad. I coiuld only see what it was. Not where.

GTS Mark · 09-18-2010, 09:21 AM

Thanks for the update

LeRoy · 09-18-2010, 09:29 AM

Better check your sites. This one hurts like a mother fucker!

Klen · 09-18-2010, 09:35 AM

Quote:

Originally Posted by DirtyWhiteBoy

Such as?

Such this shit:
http://smart-scripts.com/?action=smartspots

nikad · 09-18-2010, 09:42 AM

Glad it was of help! ( as if awms hadn´t been hit hard lately now this :P )

cykoe6 · 09-18-2010, 10:22 AM

Yea this happened to me and it really crushed me. I got my sites which got hit reconsidered by Google and the malware warning taken off but now my whole network is sandboxed. Really painful and costly shit.

Vick! · 09-18-2010, 12:00 PM

Quote:

Originally Posted by KlenTelaris

This is why i use commercial scripts rather.

Like commercial ones are immune to security loopholes and vulnerabilities.

roly · 09-18-2010, 01:04 PM

Quote:

Originally Posted by Vick!

Like commercial ones are immune to security loopholes and vulnerabilities.

yeah a lot of open source stuff has 100's of geeks going over the code rather than a few employed coders of commercial scripts.

Hawkins · 09-18-2010, 01:11 PM

OpenX sucks

tiger · 09-18-2010, 04:30 PM

Those fuckers got me, but luckily on only one installation.

CyberHustler · 09-18-2010, 04:42 PM

I dropped openx right on time... sucks for some of you guys though.

signupdamnit · 09-18-2010, 04:47 PM

There's an update to fix it...

HomerSimpson · 09-18-2010, 08:18 PM

openx rocks and this will be solved...

Quote:

Originally Posted by KlenTelaris

Such this shit:
http://smart-scripts.com/?action=smartspots

I have it and I have following problems
- geoip targeting not working for my country
- php includes code not counting hits/clicks
- memcache not working (bad help on this one too)
- banners load slowly the rest of the page, lacking iframe codes...

hdkiller · 09-19-2010, 02:13 AM

a few days ago (2) just got an update

do your update

Davy · 09-19-2010, 03:22 AM

That must have been quite a big security hole if it allowed attackers to inject code into the ad fields.

I never liked openX. They include the Pear library in their download which makes the whole thing huge. Many servers already have pear installed. They should just make it a server requirement instead of including it in the download.

nikad · 09-19-2010, 06:23 AM

The latest update does not completely solve the problem, you must allow only your server ip address to access any files of this script, otherwise they will get in again. I always loved this script, but the security hole has been there for almost a year...that doesn´t make me happy. I will give it a last chance though, but it gets boring :P

stonehammer · 09-19-2010, 08:38 AM

looks like its time to use simple php scripts like those free random banner scripts

09-18-2010, 06:56 AM	#1
nikad Confirmed User Join Date: Jan 2004 Location: BA Posts: 2,579	If you run OpenX watch out for this - CRITICAL SECURITY - http://blog.sucuri.net/2010/09/openx...o-upgrade.html http://blog.openx.org/09/security-up...8OpenX+Blog%29 Many sites are being reported as malicious by Google, causing traffic loss, etc. Hope you find this useful. nik __________________ The Filthy Few [email protected]

09-18-2010, 07:15 AM	#2
Rick Diculous Confirmed User Join Date: Jul 2008 Posts: 2,370	Yeah, I got 5 of my sites blocked by google this week because I was using openx. they say I distributed badware though openx __________________ 100+ adult blogs looking for hardlink trades ICQ: 383 631 174 jason @ pornblogempire . com

09-18-2010, 08:02 AM	#5
TheMaster Confirmed User Join Date: Nov 2003 Location: Prague Posts: 2,732	is this happening to sites running that particular update or for all older OpenX versions? __________________ Promote Chaturbate Free Cams

09-18-2010, 08:04 AM	#6
MaDalton I am Amazing Content! Industry Role: Join Date: Feb 2004 Posts: 39,828	thanks for the info __________________ AmazingContent.com - providing only the best content and service since 2003 Monetize your content on Veegaz.com - one of Germanies largest VOD sites Got German traffic? We convert it into money for you! Skype: madalton02826 - Email: oltecconsult [at] gmail [dot] com

09-18-2010, 09:20 AM	#8
Dating Port Useless As Ever Industry Role: Join Date: Jan 2009 Location: Planet Earth Posts: 731	I deleted my OpenX about a year ago. Thanks for helping that guy out Nikad. I coiuld only see what it was. Not where. __________________ Email: admin[at]datingport.co.uk - ICQ: 456416181 It's amazing what you (L)earn when you put some effort into it! Last edited by Dating Port; 09-18-2010 at 09:21 AM..

09-18-2010, 07:29 AM	#3
Klen Industry Role: Join Date: Aug 2006 Location: Little Vienna Posts: 32,235	This is why i use commercial scripts rather.

09-18-2010, 07:43 AM	#4
strobi Confirmed User Join Date: Nov 2002 Location: Belgium Posts: 7,383	Holy shit! checking that out (upgrading)!

09-18-2010, 09:21 AM	#9
GTS Mark Vrume Mark Industry Role: Join Date: Jan 2001 Location: Toronto, Canada Posts: 20,912	Thanks for the update

09-18-2010, 09:29 AM	#10
LeRoy Porn Pusher Industry Role: Join Date: Jul 2007 Location: It's a dry heat Posts: 13,337	Better check your sites. This one hurts like a mother fucker! __________________ JAPANESE CAMS AND CONTENT SITES Skype - leroy.rowland2

09-18-2010, 09:42 AM	#12
nikad Confirmed User Join Date: Jan 2004 Location: BA Posts: 2,579	Glad it was of help! ( as if awms hadn´t been hit hard lately now this :P ) __________________ The Filthy Few [email protected]

09-18-2010, 10:22 AM	#13
cykoe6 Confirmed User Industry Role: Join Date: Apr 2005 Location: Vegas Posts: 4,499	Yea this happened to me and it really crushed me. I got my sites which got hit reconsidered by Google and the malware warning taken off but now my whole network is sandboxed. Really painful and costly shit. __________________ бабки, шлюхи, сила

09-18-2010, 01:11 PM	#16
Hawkins Confirmed User Join Date: Oct 2007 Posts: 149	OpenX sucks

09-18-2010, 04:30 PM	#17
tiger Confirmed User Industry Role: Join Date: Apr 2002 Location: Los Angeles Posts: 6,986	Those fuckers got me, but luckily on only one installation. __________________

09-18-2010, 04:42 PM	#18
CyberHustler Masterbaiter Industry Role: Join Date: Feb 2006 Posts: 26,037	I dropped openx right on time... sucks for some of you guys though.

09-18-2010, 04:47 PM	#19
signupdamnit Confirmed User Industry Role: Join Date: Aug 2007 Posts: 6,697	There's an update to fix it...

09-19-2010, 02:13 AM	#21
hdkiller Full time cybermage Industry Role: Join Date: Jun 2006 Location: Cyberspace Posts: 461	a few days ago (2) just got an update do your update __________________ ClickPapa! - Buy and Sell traffic

09-19-2010, 03:22 AM	#22
Davy Confirmed User Industry Role: Join Date: Apr 2006 Location: Germany Posts: 4,323	That must have been quite a big security hole if it allowed attackers to inject code into the ad fields. I never liked openX. They include the Pear library in their download which makes the whole thing huge. Many servers already have pear installed. They should just make it a server requirement instead of including it in the download. __________________ --- ICQ 14-76-98 <-- I don't use this at all

09-19-2010, 06:23 AM	#23
nikad Confirmed User Join Date: Jan 2004 Location: BA Posts: 2,579	The latest update does not completely solve the problem, you must allow only your server ip address to access any files of this script, otherwise they will get in again. I always loved this script, but the security hole has been there for almost a year...that doesn´t make me happy. I will give it a last chance though, but it gets boring :P __________________ The Filthy Few [email protected]

09-19-2010, 08:38 AM	#24
stonehammer Confirmed User Join Date: Feb 2008 Posts: 1,430	looks like its time to use simple php scripts like those free random banner scripts __________________ GFY Educational Series: Buying Skimmed Traffic for Websites